Grzegorz Makarewicz

The old ways of signing are not supported by endesive, adbe.x509.rsa_sha1 is just that. Out of curiosity I added the script: pdf-verify-rsa_sha1.py, it only works for the simplest case DigestLocation...

Endesive has only minimal support for creating a graphic version of the signature visible as annotation. I have not tried the transparency of the images, so I have no idea...

just make PR The purpose of endysive is not to verify the signature, but to sign the document. Verification should cover much more than what endesive offers today, e.g. verification...

please check the git version

The workload seems to be high and the profits are weak. If you feel like it, add this functionality and we will share it with others.

Read in asn1crypto/cms.py - in the signature structure there is room for crl/ocsp/timestamp, I have only completed the required bare minimum

try version 2.0.7 with ocs psupport

example in pdf-sign-cms-hsm-certum.py There are new parameters (optional) for pdf.cms.sign, i.e .: ocspurl and ocspissuer. The former is the address of the certificate provider's ocsp service, and the latter is...

You are the first person who showed interest in smime messages :) Unfortunately, what you are asking about is not implemented, I don't need it, others apparently too.

If you have access to the key, it is not a KMS. Having a key, you cannot use it in a signed certificate, CA signs your data with its certificate...